Privacy Policy

1. When and How We Collect Your Data

We collect personal information in the following situations:

• Account creation: when you register for our services via email or Manus OAuth authentication
• Service usage: when you view the lunar calendar, access new crescent data, and explore calendar features
• Content download: when you download or export iCal files for integration into your personal calendars
• Transactions: when you make a purchase or subscribe to a plan (Silver, Gold, or Founding Patron)
• Communication: when you communicate with our support team
• Navigation: automatically when you browse our site

2. Types of Data Collected

We collect the following categories of personal data:

• Identification data: first name, last name, email address
• Account data: user ID, password (encrypted), language preferences, access history
• Payment data: billing information, transaction history (processed by Stripe)
• Content data: downloaded iCal files, years consulted, calendar preferences
• Communication data: messages, support requests, user feedback
• Technical data: IP address, browser type, operating system, pages visited, session duration
• Location data: country, region (determined by IP address)

3. Legal Basis for Processing (GDPR)

We process your personal data on the following legal bases:

• Consent: for cookies, marketing, and optional communications
• Contract performance: to provide our services and process your orders
• Legal obligations: for accounting, taxation, and regulatory compliance
• Legitimate interests: to improve our services, security, and fraud prevention

4. Processing Purposes

We use your personal data for:

• Creating and managing your user account
• Providing and improving our lunar calendar services
• Processing your payments and managing your billing
• Sending you support communications and service updates
• Analyzing service usage to optimize user experience
• Detecting and preventing fraud and abuse
• Complying with legal and regulatory obligations
• Sending you marketing communications (with your consent)

5. Data Sharing and Disclosure

We share your personal data only in the following cases:

• Service providers: hosting, payment processing (Stripe), customer support, analytics
• Technology partners: authentication platforms (Manus OAuth), cloud services (Manus, Cloudflare, AWS)
• Legal obligations: if required by law or a competent authority
• Rights protection: to protect our rights, your security, or that of others

6. Hosting and Infrastructure

Our services are hosted on:

• Manus: cloud platform for application hosting and user data storage
• Hostinger: web hosting and associated services
• Cloudflare: CDN and security services
• AWS/R2: storage for exported files and backup data

Our hosting and service providers apply security measures that comply with industry standards.

7. International Data Transfers

Our servers are hosted in the United States. By using our services, you accept that your data will be processed and stored in the United States. European Union users explicitly accept this transfer by creating an account and using EternalClock.

8. Data Security

We apply standard security best practices to protect your data:

• SSL/TLS encryption for data in transit
• Secure authentication via Manus OAuth
• Role-based access control (admin, user)
• Secure password storage (hashed and salted)
• Compliance with security standards of our providers (Manus, Cloudflare, AWS)

9. Data Location and Hosting

Your data is hosted on servers located in the United States through our providers (Manus, Cloudflare, AWS). While we apply security measures, storage in the United States means your data may be subject to U.S. laws regarding data access.

10. Data Retention

We retain your personal data only for as long as necessary for the purposes for which it was collected:

11. Cookies and Tracking Technologies

We use the following cookies and tracking technologies:

• Essential cookies: necessary for site functionality and security
• Analytical cookies: to understand how you use our services
• Marketing cookies: to offer you personalized content (with consent)

You can control cookies through your browser settings or our consent banner.

12. Your Rights (GDPR - European Union)

You have the following rights under the GDPR:

• Right of access: access your personal data
• Right to rectification: correct inaccurate data
• Right to erasure: request deletion of your data
• Right to restrict processing: restrict processing of your data
• Right to data portability: receive your data in a structured format
• Right to object: object to processing of your data

To exercise these rights, please contact us at the address provided below.

13. Protection of Minors

Our services are not intended for persons under 18 years of age. We do not intentionally collect personal data from minors. If we discover that we have collected data from a minor, we will delete it immediately.

14. Automated Decision-Making and Profiling

We use automated processes to:

• Detect fraud and abuse
• Improve our services and recommendations
• Personalize your user experience

You have the right to request manual review of any automated decision that affects you.

15. Changes to This Policy

We may modify this privacy policy at any time. Changes will be posted on this page with an updated date. Your continued use of our services after posting changes constitutes your acceptance of the changes.

16. Your Rights (CCPA/CPRA - California)

If you are a California resident, you have the following rights:

• Right to know: request information about personal data collected
• Right to delete: request deletion of your personal data
• Right to opt-out: refuse the sale or sharing of your data
• Right to correct: correct inaccurate personal data
• Right to non-discrimination: we will not discriminate against you for exercising your rights

To exercise these rights, please contact us at [email protected].

17. Your Rights (PIPEDA - Canada)

If you are a Canadian resident, you have the following rights:

• Right of access: access your personal information
• Right to request correction: correct inaccurate or incomplete data
• Right to know use: understand how your data is being used
• Right to withdraw consent: withdraw consent for data processing
• Right to lodge a complaint: file a complaint with the Privacy Commissioner of Canada

To exercise these rights, please contact us at [email protected].

18. Contact Us

For any questions about this privacy policy or to exercise your rights, please contact us:

19. Data Controller

The data controller responsible for your personal data is: